Skip to main content

Snyk Fetch the Flag CTF 2023 writeup: I Do Math

Artikel von:
snyk-ctf-2023-i-do-math

30. November 2023

0 Min. Lesezeit

Thanks for playing Fetch with us! Congrats to the thousands of players who joined us for Fetch the Flag CTF. If you were at Snyk’s 2023 Fetch the Flag and are looking for the answer to the I Do Math challenge, you’ve come to the right place. Let’s walk through the solution together!

The solution is to log in with the username admin and pin 9007199254740992. This is the JavaScript MAX_SAFE_INT. Any number smaller than this is incorrect, and larger numbers give you the hint that your pin is too large. 

#!/bin/bash

if [[ -z "$1" ]]
then
    echo "IP address or hostname not specified"
    exit 1
fi

if [[ -z "$2" ]]
then
    echo "Port not specified"
    exit 1
fi

curl -s http://$1:$2/9007199254740992 | grep flag --color=none

Thanks for making Fetch happen!

A huge thank you to all the teams in Fetch the Flag 2023! It was great seeing all of you there and you can always find me on YouTube.

Here are the writeups for the other 2023 challenges. Dig in!

Gepostet in:
snyk-ctf-2023-i-do-math

Sie möchten Snyk in Aktion erleben?

Check out this hands-on, virtual workshop to learn how to Capture the Flag (CTF) challenges, including pwn and web. After the workshop, you'll have the security skills and experience to compete in CTFs.